OrbitalBeard
Member
Good ol' victim blaming.
-
Hey, guest user. Hope you're enjoying NeoGAF! Have you considered registering for an account? Come join us and add your take to the daily discourse.
My fucking Sony account got hacked.
- Thread starter Ultima_5
- Start date
Good ol' victim blaming.
You're not serious are you? It's users fault because sonys security is absolutely shit and has been since its release, and still don't have 2 factor authentication? I think I've heard it all now.
just google it, 1-800-345-7669
WickedLaharl
Member
What kind of garbage is this
sensui-tomo
Member
He'll get a refund.... to his sony wallet, slim chance in hell its back to his bank.
At this point I think it's safe to say the only people at Sony with a solid grasp of proper security protocols are the people on the hardware team.
They are really good at protecting their IP, but god awful when it comes to providing the same kind of rigor for their customers.
autoduelist
Member
They didn't 'hack' his account through Sony servers. They almost certainly 'hacked' his account by getting his email/password combo from a -completely different non-Sony source- and then auto-trying said combo everywhere, and found an 'in' at Sony.
Sony can not magically prevent people from re-using passwords elsewhere. They have no idea if people are doing this.
Once in, then yes, the perp had access to OPs CC info since he stored it.
If you use a secure email/pw combo and change it regularly you're not going to get 'hacked'.
WickedLaharl
Member
Their policies dealing with compromised accounts is terrible
No. No. NO. and HELL NO.
Every time you hear of a large corporation being hacked, they get a bit of info. That info 'book' about your email acct just keeps getting bigger. Oh, the linkedin hack only got your email address and a unique password? Great, but that Target hack got the general purpose password you always use. So now they have both, all they have to do is try.
starpiercer
Banned
Have we ever had an Nintendo account hack thread before? Nintendo must have some tight security.
ScaryShark
Banned
Since it's widely known Sony has shit security and is a big target for people looking to get accounts, why would anyone keep their payment info on it?
Both parties can be at fault.
It's deserved. They sold me a product in a closed Eco system. I shouldn't have my information and financials at risk
Why is Sony letting people have their hacked/banned accounts back. They kept making me jump through hoops, until they found a reason to not give my account back (email access to the very 1st email account used on my PSN account from the very beginning of PSN (Decade ago).
Email account's long dead and gone, to an ISP my parents had at the time.
I mean, whoever hacked it didn't use my finances to buy anything, they played some NBA2K and the account was banned within 24 hours. But there went the name, all the trophies, and the saves.
Email account's long dead and gone, to an ISP my parents had at the time.
I mean, whoever hacked it didn't use my finances to buy anything, they played some NBA2K and the account was banned within 24 hours. But there went the name, all the trophies, and the saves.
valkillmore
Member
Hey Sony this seems to be a recurring issue. Fix your shit
This is way I never put my card on anything. Steam, Xbox, PSN, etc. Hope they can resolve this issue for you, though, OP.
Edit: If you use the same password for other things like social network, stores, and email, I'd change them all. Whoever got into your account will try and get into all of those other things as well.
Edit: If you use the same password for other things like social network, stores, and email, I'd change them all. Whoever got into your account will try and get into all of those other things as well.
True. But I think you're letting them off easy for not providing industry standard 2 factor authentication. In some cases these accounts are worth thousands of dollars and they do little to provide customers the tools we should expect to protect our investment.
D
Deleted member 325805
Unconfirmed Member
Well, he's probably pissed there's no 2-factor which is totally valid.
xenorevlis
Member
So you know for certain their system got hacked and it wasn't just someone who got your info?
You signed the eula/ w/e with them. There are responsibilities you have yourself in the situation here and Sony has made it clear time and time again that beyond giving you credit to your account they will not help you get what you want - a refund.
OrbitalBeard
Member
Another victim blamer. Pathetic.
Darryl M R
Member
What are some safeguards that PS4 users should practice?
I don't believe I have any credit cards or paypal accounts linked to my account. I only add money on my PSN account via PSN cards I buy on Amazon (not like I never used my card before so if there is a breach of that level I could still be vulnerable unless I update my cards).
I don't believe I have any credit cards or paypal accounts linked to my account. I only add money on my PSN account via PSN cards I buy on Amazon (not like I never used my card before so if there is a breach of that level I could still be vulnerable unless I update my cards).
Probably a silly question that I already know the answer to, but I don't store my CC info on PSN, and any money I add to my account gets spent immediately most of the time. Let's say somebody manages to hack my account. As long as I change my password ASAP, nothing bad comes of the hack besides maybe some loser getting my email address, right? Would I even have to contact Sony, or would changing the password be enough to lock them out?
Really?
How else do you get into someone else's account? By knowing password..
Unless he can prove otherwise that social engineering is in play, then that's the fault of the Sony rep who gave out personal information.
Most likely, as the OP said, it was from his password and he changed it AFTER they accessed it... AND HIS PAYPAL/Payment information using the SAME info.
Idk. I'm going through and changing passwords everywhere. My paypal was linked to Sony and that's who emailed me about the charges
sensui-tomo
Member
never use credit cards/debit cards/paypal Only use psn cards, Never use the same password on any website, never share password with anyone.
I don't think anyone is suggesting Sony is breaking any laws or contracts. What they are saying is that their existing infrastructure is fucking embarrassing. How else are people supposed to communicate their frustration other than to voice it and share experiences on a forum frequented by a fair number of influential individuals within the target organization?
ScaryShark
Banned
You're half way there. Give it a unique password you don't use anywhere else. And not just a variation of something you use commonly.
OrbitalBeard
Member
Well, that's partially because they are living in the past. A Nintendo Network ID is essentially worthless to anyone but the user with the single console or handheld the software is tied to.
AmuroChan
Member
Please don't speak for me. They've treated me just fine.
Zeyphersan
Banned
Are you serious? In that case my "master key" is either the serial number to my PSP from 2007 or a PS3 from 2011. Both long sold. That they expect me to have that info on hand in these events is insane
Because if Sony sees you charged back, they close the account. No questions, no nothing. Yes, it's wrong.
starpiercer
Banned
That's not right in my books.
I have to say I agree to some extent.
They'll ban me
OrbitalBeard
Member
So?
Stop blaming a victim for what essentially amounts to identity theft. It's a pathetic attitude to have.
Because Sony will close his account. It's nuts.
They'll most likely ban his PSN, and offer no help beyond that.
ScaryShark
Banned
https://haveibeenpwned.com
Make sure you do the email signup because there are some lists that are 'sensitive' i.e porn sites that they don't publicly display but will email you if you're on one of those lists. It will also update you in the future.
Yeah, damn serious.
Having 2FA still has it's flaws as well and isn't 100% secure.
Most security experts will tell you that majority of these "hacked accounts" are not "hacked at all." It's because their information is hanging out online somewhere.. people using the same e-mail address and passwords, and people use that to get into accounts -- there is no brute force tactics here.
Stop being ignorant to the fact that "oh, it can't happen to me because there's no such way someone can get into get into my account."
OmegaDL50
Member
The account is banned and you lose access to everything you purchased through PSN.
I guess you would call it "Reality garbage" since it seems impossible for you to comprehend account security.
Not sure if you're serious, but I'll assume you are. In the likely scenario that OP had his information phished and someone used it to access his PSN account, how is that Sony's fault? EDIT: That's not to say OP's not allowed to be mad. They had $200 stolen from them, I'd be furious too, but let's not jump the gun and assume this is all on Sony's back end, when time and time again, it appears to not be.
Sony will essentially lock them out of the account if they try to chargeback.
Sony could make you jump through hoops to make you prove you are "you" until there's a step that you can't go past (in my case, ancient email account that can't be accessed), and they decide to not unban the account. Even after giving them serial numbers off the original PS3 I used to make it. Lost account name, lost trophies, but mostly, it was lost saves.
Think store purchased items stay with the machine, but unsure if I could go back and redownload older purchases I didn't have on the HD. Basically, GTAV continues to work, never took it off the HD (just had to start the game over from scratch), but I never bother to go and see if something like Watch_Dogs could be redownloaded or if I lost a full game purchase)
Doctor_Thomas
Member
Why would Sony acknowledge something that isn't their fault?
At the end of the day, there's definitely more Sony could do, but users have a responsibility for their own security and, generally, people who get "hacked" are using their username/password combo on unsecure sites or on other sites that have been hacked. There's no "hack" on Sony's side or the person's account, rather someone has got the information or brute forced it.
People need to be more responsible.
Amazing.
This thread made me double check if any payment methods were tied to my PSN and I apparently forgot to take my paypal off(even tho that's two factor).
Your pain is my gain at least, OP.
OrbitalBeard
Member
I'm not blaming Sony. It's not a black and white issue. Should Sony have Two-step authentication? Absolutely. Should users think twice before giving Sony their personal information? You bet. But blaming the victim for having money and their PSN identity stolen from them is pathetic and heartless. I have no time for that disgusting attitude.
It's called a generalization. Compared to their counterparts Sony has a deplorable history when it comes to issues like this.
Like you I've been lucky, but let's not pretend the issues aren't widespread.